separa trafico por puerto

xalcor

hola a todos,

necesito me orienten la mejor forma de configurar mi pfsense+
en mi red lan 172.15.10.0 tengo un enlace de datos para sistema que tiene la misma subnet que mi lan
172.15.10.1 y un enlace a internet con ip publica. lo que necesito es:
mi ip de datos (172.15.10.1 sea el default gateway y que atraves de proxy server (configurado en pfsense)
brinde salida a internet mi pfsense tiene la ip 172.15.10.100 y debe ser el default gateway de mi red.
para acceso a datos de sistem pero que si buscan internet y correo usando outlook lo haga atraves del proxy.

gracias mil
de antemano

JKnott

From Google translate:

I need guidance on the best way to configure my pfsense +
in my network lan 172.15.10.0 I have a data link for system that has the same subnet as my lan
172.15.10.1 and an internet link with public ip. what I need is:
my data ip (172.15.10.1 is the default gateway and through the proxy server (configured in pfsense)
provide internet output my pfsense has the ip 172.15.10.100 and it should be the default gateway of my network.
for access to system data but if they search the internet and mail using outlook, do it through the proxy.

You can't have the same subnet at both sites. You have to change one so they don't overlap.

No puede tener la misma subred en ambos sitios. Tienes que cambiar uno para que no se superpongan.

xalcor

@jknott
apologies write in spanish
i already resolved

xalcor

@jknott
thnaks jknott

i was very bussy
the problem with this network is the routers cisco have same subnet. and can't change to another subnet or ip address.
so i was thinking change my mikrotik router to another subnet like (172.16.25.1) and change one port ethernet of my pfsense from lan (vlan 491) to connect mikrotik router (mikrotik make failover two datalink)

secondly i need client have internet, already have connected public ip using squid on my pfsense

pfsense+ switch vlan and i not easy for my

thanks in advance

JKnott

Since you can't change the other end, you have to change yours, so that the subnets don't overlap. It doesn't matter what addresses you use, so long as it's different from the other end and within the RFC1918 limits.

xalcor

@jknott
ok

i will make changes